Get All Access for $5/mo

Google Bans Dozens of Apps Containing Illicit Data-Harvesting Software Everything from the weather to prayer apps were found to contain hidden code that could harvest a user's location, email address, phone number and more.

By Madeline Garfinkle Edited by Amanda Breen

Opinions expressed by Entrepreneur contributors are their own.

Dozens of consumer-facing apps were pulled from the Google Play Store after researchers found they contained hidden code intended to stealthly collect personal user data — including email address, phone number, precise location and more.

Measurement Systems, the company behind the operation, allegedly paid developers to embed the code into their software development kits — or SDKs — The Wall Street Journal reported. In exchange for adding the illicit code to their software, the developers would be compensated monetarily and receive access to collected user data. The Panama-based company has also been linked to contractors involved in cyberintelligence operations for U.S. security agencies.

Related: Google Play Replaces Family Apps With 'Teacher-Approved' Kids Tab

The data-harvesting code was discovered by researchers Serge Egelman of UC Berkley and Joel Reardon of University of Calgary, who elaborate on the disturbing findings in an App Census Blog post. Reardon breaks down how the code works, what data is collected and who exactly receives it — all of which reveal the magnitude of user privacy violated on dozens of consumer-facing apps. Along with personal information like one's email and phone number, Reardon highlights what's "particularly frightening" is the code's ability to gather a user's precise GPS location, stating that "such a database could be used to run a service to look up a person's location history just by knowing their phone number or email, and could be used to target journalists, dissidents, or political rivals," Reardon writes on the blog post.

Measurement Systems has denied all claims and, in a statement to the WSJ via email, they call the allegations "false" and refute any connection to U.S. national security agencies.

Related: The Tech Giants Get Rich Using Your Data. What do You Get in Return?

Some apps that contained the code are Speed Camera Radar, WiFi Mouse, QR & Barcode Scanner and Qibla Compass - Ramadan 2022, among dozens of others. While Google has pulled the apps reported to have the code, a spokesperson told the WSJ that they are allowed to apply for reinstallment once the forbidden code is removed.

Madeline Garfinkle

News Writer

Madeline Garfinkle is a News Writer at Entrepreneur.com. She is a graduate from Syracuse University, and received an MFA from Columbia University. 

Want to be an Entrepreneur Leadership Network contributor? Apply now to join.

Editor's Pick

Business News

Apple Is Working on Making Its $3,499 Vision Pro More Affordable — and Mainstream. Here's How.

Apple's product is at least three times more expensive than Meta's version.

Business News

Some Car Dealerships Are Selling Cars the Old Fashioned Way Following Massive Cyberattack

CDK software services an estimated 15,000 dealerships in the U.S.

Business News

50 Cent Once Sued Taco Bell for $4 Million. Here's How the Fast-Food Giant Got on the Rapper's Bad Side.

The brand suggested that 50 Cent change his name to match its "Why Pay More?" value menu promotion prices. The rapper was not amused.

Thought Leaders

The 8 Taylor Swift Strategies Every Tech Leader Should Apply in 2024

From more progressive intellectual property management to breakthrough community engagement, here's what tech entrepreneurs can learn from Taylor Swift.

Business News

Jack Dorsey Says It Will Soon Be 'Impossible to Tell' if Deepfakes Are Real: 'Like You're in a Simulation'

Dorsey said we will "not know what is real and what is fake" in the next five to 10 years.

Business News

Controversial Clothing Company Shein Quietly Files IPO in London

Shein is headquartered in Singapore, where it's been since 2021, though most of its operations, including factories, are in China.